Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/python-babel@1.3%2Bdfsg.1-5
purl pkg:deb/debian/python-babel@1.3%2Bdfsg.1-5
Next non-vulnerable version 2.8.0+dfsg.1-7
Latest non-vulnerable version 2.8.0+dfsg.1-7
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-yw7e-93us-8qh8
Aliases:
CVE-2021-42771
GHSA-h4m5-qpfp-3mpv
PYSEC-2021-421
Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.
2.6.0+dfsg.1-1+deb10u1
Affected by 1 other vulnerability.
2.8.0+dfsg.1-7
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T18:27:18.917578+00:00 Debian Oval Importer Affected by VCID-yw7e-93us-8qh8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:08:22.902154+00:00 Debian Oval Importer Affected by VCID-yw7e-93us-8qh8 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-11T18:12:20.321282+00:00 Debian Oval Importer Affected by VCID-yw7e-93us-8qh8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T14:56:40.088714+00:00 Debian Oval Importer Affected by VCID-yw7e-93us-8qh8 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-08T17:58:39.180976+00:00 Debian Oval Importer Affected by VCID-yw7e-93us-8qh8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T23:28:49.325292+00:00 Debian Oval Importer Affected by VCID-yw7e-93us-8qh8 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0